Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS52053.roa
File: AS52053.roa (raw, json)
Hash identifier: QhdS8nl/ENBYwGF/xlAktfVeJ2O6LE12G/yeG46fxrg=
Subject key identifier: 0D:FD:74:2A:7A:22:2C:C8:69:6D:09:69:F6:80:87:A2:63:2D:F8:C6
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 45E39B432A421E84525DCACCDB1F5AF5E092DFC1
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS52053.roa
Signing time: Wed 27 May 2026 14:26:04 +0000
ROA not before: Wed 27 May 2026 14:21:04 +0000
ROA not after: Wed 26 May 2027 14:26:04 +0000
asID: 52053
IP address blocks: 155.117.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:08:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:e3:9b:43:2a:42:1e:84:52:5d:ca:cc:db:1f:5a:f5:e0:92:df:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 27 14:21:04 2026 GMT
Not After : May 26 14:26:04 2027 GMT
Subject: CN=0DFD742A7A222CC8696D0969F68087A2632DF8C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5d:b1:91:c8:e5:80:04:be:82:94:b9:01:10:
37:a7:62:57:55:0b:e8:e3:fe:0d:b4:fa:40:0a:98:
57:c0:26:be:d1:97:95:ff:f9:55:e0:ae:2d:8d:11:
db:11:db:62:e9:34:f5:97:35:86:be:10:bf:5a:68:
a3:0d:c5:d3:e9:d3:e4:4d:df:25:c5:dd:25:b6:ef:
91:37:75:22:35:ba:93:b8:53:af:92:f4:73:a4:b2:
de:f2:f0:3f:97:60:aa:05:28:56:f5:5c:06:4c:ee:
f6:aa:7e:cc:81:7e:38:d4:6c:41:fc:3d:ae:91:40:
02:e5:47:d3:20:39:77:d6:7b:cf:4a:95:a9:71:9b:
68:1c:cc:bd:f3:c3:f6:d7:5b:9f:a5:6a:69:a0:e8:
10:02:c0:48:a4:4e:f1:d1:bc:f5:0d:96:61:45:88:
ad:de:3e:30:57:e7:0d:d7:b0:4e:d6:b3:ff:6e:c8:
4c:84:44:d0:bf:70:3f:bd:51:1a:b9:9d:d5:9a:86:
f6:c4:41:71:98:e6:55:3d:b9:0e:cf:ca:90:c6:c4:
0d:e3:4d:89:36:a2:73:ca:42:59:04:a7:3a:4d:70:
6f:dc:11:d1:e8:2e:3f:2a:af:81:72:e3:66:3e:49:
03:a1:92:e7:d7:91:6b:da:68:f2:e6:b7:e6:64:dd:
32:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:FD:74:2A:7A:22:2C:C8:69:6D:09:69:F6:80:87:A2:63:2D:F8:C6
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS52053.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.117.152.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:06:b0:13:2d:3e:03:65:be:14:5e:17:4f:3f:58:86:91:2a:
02:69:54:c1:90:aa:92:94:e9:54:34:6a:b4:e0:20:26:e6:24:
8a:ff:e2:3d:90:e3:74:b3:1c:35:04:d4:5e:77:76:dc:95:8d:
79:bc:e9:71:eb:18:af:b7:b8:b0:49:7d:9b:73:c4:97:60:3d:
6e:38:4f:0f:f0:04:18:a3:97:6b:9d:1b:57:e0:8d:a2:05:e2:
8d:f9:88:f0:9f:32:3e:2e:c1:e2:33:18:8c:30:e2:2c:09:6d:
e0:4c:cb:92:0e:1a:c6:ed:42:cf:92:ab:41:93:e1:7b:75:8a:
86:9e:1f:75:85:42:90:a4:ba:53:8e:ce:5a:74:01:78:22:86:
5a:69:5c:c6:91:e8:ad:88:19:25:70:f0:6c:24:c9:26:cb:58:
1c:97:69:e5:13:5e:af:1a:ce:70:10:b0:da:33:67:94:d2:91:
34:e2:1f:f4:dc:0a:d8:bf:eb:69:e2:ef:cb:7b:ad:ff:c8:3d:
c3:af:08:85:13:9d:c9:59:19:85:3c:ad:93:b3:9c:6c:d0:13:
44:a0:8a:10:ee:4f:16:fd:76:f0:86:b1:ac:d5:d2:a6:e3:cc:
fe:04:ca:12:a9:58:23:c5:bf:f2:60:5b:df:90:92:d8:b9:5a:
33:13:78:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 01:15:26 2026 by rpki-client